floxif | f76c798d205ae8b0921a69318c4ca20444a3f946e2ca067f60e30577bacc34c3 | Triage

Submit
Reports

Overview

overview

Static

static

3

f76c798d20...c3.dll

windows7-x64

f76c798d20...c3.dll

windows10-2004-x64

Sharing

General

Target

f76c798d205ae8b0921a69318c4ca20444a3f946e2ca067f60e30577bacc34c3
Size

969KB
Sample

250124-m85kasvray
MD5

a0d54d7df397a35a27a30d5d5f87c33a
SHA1

4ecffc30a2f58743f6a7de41c66930a4d8f24917
SHA256

f76c798d205ae8b0921a69318c4ca20444a3f946e2ca067f60e30577bacc34c3
SHA512

e6d2797d8771fd62bcb49625a17883134e7eb8407fc6f02ed3fd6dc9107ab505fc6147984e55d34dbb16d676e7637b0a861ecb8bcca5a36be528cfb2721c2d58
SSDEEP

24576:aW+wsDaKw6DDz3qRyPnmGfrnvVUKueYeRmneWtJmrEH7H:aas66DwOBfrnvV72eWtr

Score

10^/10

floxif backdoor discovery trojan upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

f76c798d205ae8b0921a69318c4ca20444a3f946e2ca067f60e30577bacc34c3.dll

Resource

win7-20240903-en

floxif backdoor discovery trojan upx

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

f76c798d205ae8b0921a69318c4ca20444a3f946e2ca067f60e30577bacc34c3.dll

Resource

win10v2004-20241007-en

floxif backdoor discovery trojan upx

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  f76c798d205ae8b0921a69318c4ca20444a3f946e2ca067f60e30577bacc34c3
- Size
  
  969KB
- MD5
  
  a0d54d7df397a35a27a30d5d5f87c33a
- SHA1
  
  4ecffc30a2f58743f6a7de41c66930a4d8f24917
- SHA256
  
  f76c798d205ae8b0921a69318c4ca20444a3f946e2ca067f60e30577bacc34c3
- SHA512
  
  e6d2797d8771fd62bcb49625a17883134e7eb8407fc6f02ed3fd6dc9107ab505fc6147984e55d34dbb16d676e7637b0a861ecb8bcca5a36be528cfb2721c2d58
- SSDEEP
  
  24576:aW+wsDaKw6DDz3qRyPnmGfrnvVUKueYeRmneWtJmrEH7H:aas66DwOBfrnvV72eWtr
Score

10^/10

floxif backdoor discovery trojan upx
- Floxif family
  floxif
- Floxif, Floodfix
  Floxif aka FloodFix is a file-changing trojan and backdoor written in C++.
  backdoor trojan floxif
- Detects Floxif payload
  backdoor
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

floxifbackdoordiscoverytrojanupx

behavioral2

floxifbackdoordiscoverytrojanupx

© 2018-2025

Terms | Privacy